I used to get about 50 scans/day six months ago but apparently firewalling the little creeps out on first port scan is working a treat.
Apparently? I doubt it. You really think they're coming from the same IP's over and over? If you're getting scanned by the same IP, it's just an infected system with an automated script on it (looking for existing vulns). Half of what you've posted is dynamic.
All you're doing (if you don't go clear your blocks) is slowly blocking the whole of the internet one IP at a time.
A cracker using the same IP? That would be breaking pre-internet Rule #1: Thou Shalt not phreak from thine own phone lines.
Also your interenet could be of interest as well-- one can use it to leapfrog to other systems and implicate you.... Or they could install a DDOS client... Or many other things....
Do you have a bomb shelter built yet? It doesn't matter WHERE you live, you could always be in the path of a missle. Are you telling me you spend more time on the 'virtual' possibilites, than on saving the lives of you and your family?
Why? You must have weighed the odds and figured it was unlikely it would happen.
Sounds like my computer security 'thought processes' are the same as your life security:P
And for the hax0rs without a local shell, there's a recent samba instant-remote-r00t vulnerability [samba.org]. Get your patches while they're hot!
True, except here it basically says if you expose samba/CIFS in general, you're fuxored.
"The SMB/CIFS protocol implemented by Samba is vulnerable to many attacks, even without specific security holes. The TCP ports 139 and the new port 445 (used by Win2k and the Samba 3.0 alpha code in particular) should never be exposed to untrusted networks."
So all they've done is release a patch for what can be fixed WITHOUT breaking Windows integration.
Have you considered the possibility of someone exploiting a non-root remote hole on your box and now having the ability to escalate themselves to root?
EVERYBODY plays the odds:
FIRST: a user has to exploit *A* remote exploit. Which one? Could be anything. Most exploits are either popular services, or shots in the dark. Patch the popular services, and you've defeated 90% of the scans. Remember, there's safety in numbers, and the vast amount of hosts on the internet just makes it less likely you'll even been scanned in the first place - and even less likely that your exploitable remote hole is discovered... (But, yes, definately patch outside services)
SECOND: As a cracker, once you've got that local exploit, what root exploit do you try and take over? Granted, you may have an unlimited amount of time to scour the system for vulnerabilities, but unless that system is actually WORTH something to you, you'll just move onto something easier.
Ease of use, it's the American way. Sure, you may say it's security by obscurity, but deadbolts are EXACTLY the same thing. Any idiot can break down the door or pick the lock.. it's just easier to get into a home with a door that's already open.
5)Would you really want to put more strain on your back then you haad to if it meant you may not be able to do what you love doing for the rest of your life?
You forgot:
6) Kissing Kirsten Dunst again is worth it all!
I still doubt we could manage to balance the ecosystem properly.
Who said it needs to be managed? IMHO, the end justifies the means. We want the end result to support HUMANS, not Tigers, not butterflies. If they fit into what the ecology becomes, then dandy.
It's not that I think it's impossible, I just doubt that the first attempt at terraforming would de successful. Using a subset of the possible flora and fauna would help a lot though.
IMHO, "Success" means Humans can live there without oxygen backpacks . Just because we know it WON'T turn out as we predict, doesn't mean that it can't be 'successful'.
"Slashdot said it was OK" ain't gonna hodl up in court. Do yourself a favor and contact an MS licensing rep.
That would make sense... except these are the same people who said "Win95 doesn't have DOS". My own PERSONAL experience was having them tell Best Buy sales people when Win95 came out to sell the customer Win95, not matter what they needed. "If they need RAM, sell them Win95. If they need more CPU, sell them Win95." Of course, I was a tech, and MS only talked to the floor people..
No, I wouldn't ask them, they're going to tell you whatever they can get away with that makes them the most money.
Downside is that the serial interface to the controller tops out at 300 kbps, but for $33 (in 10K quantities) it's a cool, easy way to net-enable just about anything."
Sounds like an experience I had about 10 years ago.. I blew the removable flash bios chip on a motherboard.:( So after calling manufacturers all over the place, I managed to find one that sold the chips in qtys' of one.
"Great!", I thought. "This will be easy."
Two weeks later, and some after some head-scratching, I realized I was the feeling-silly owner of a brand-new, BLANK, flash bios chip.
"it's a cool, easy way to net-enable just about anything."
I'd suggest editing the comment, 'Easy' is relative.
I left a place 2.5 years ago. In 1996, I installed an OS/2 Warp 3 machine to do DNS/DHCP/IP Routing on a P75. Damn stable. I then started writing some REXX scripts to do automated FTP downloads on the OS/2 machine. As time went on, I did have to make some script changes (to account for transfer errors I didn't think would happen with a leased line), and I added an FTP server to it.
It became a central point of the network.
Everytime I talk to the guys I left there, they keep saying "And we're almost rid of your OS/2 machine." That's fine, they don't know OS/2, but they fact that it's still there shows how well it's worked.
"I like to ask this one to see how you think under pressure. Give me 2 reasons why manhole covers are round."
They don't ask that in Wisconsin. Ever read the top of a manhole cover? I lived in IN for a while, and even their manhole covers were made in Neenah, WI.
They're round because if they're round, no matter which way you turn them, they can't fall in the hole.
She was the new girl and had all the right curves. I was a little embarrassed when she caught me checking out her ass, but relaxed when she smiled over her shoulder and gave a little wiggle.
At least you didn't have to sit at her desk, and type in the rconsole password (created by former admins)
'cunt'
Dammit.. why did I have to get to THAT system when I'm in the hot chick's office?
Potential research value. Their science may be more advanced and would certainly be different from our own.
heh, like when we were all kids, and got our Star Wars stuff together:
"I have Chewbacca!"
"EVERYBODY has Chewbacca"
"Oh, well, I have R5D4!"
"Yeah, I got two of those.. one's pink now. I left it in the sun."
Wouldn't it royally suck if it started with some alien bitching because he can't get High Speed "TimmyNet" Access because the local phonophone company has a monopoly?
You know, ubiquitous presence is cool and everything (although not nearly as cool as it would have been, say, 5 years ago) but really, the world is not waiting with baited breath for real-time updates of your trip across the states. I mean, not that it wouldn't be nice or anything, but it *can wait till you get home.* The whole "wow" factor of getting a stupid IP address at any given spot is gone. It's done. It's about as exciting as "woo hoo! I can make a phone call!" or "yow! Flush toilets all the way!"
In a way, I agree with you. But at the same time, you can't beat sending updates to your webserver from a CRUISE SHIP OFF THE BAHAMAS.
"Monday: Boy it's hot down here. Had to retreat below decks. The chicks are hot in the shade too. Won $200 in the casino. Blew it at the bar on the ladies. Wish you were here! (not:P)"
"Heh-heh, you're gonna love this guy..stupid fool needed help defragging his HD".
Today I realized there's nothing comparable to the 'upturned nose' of the average computer geek.
I have a 'You are dumb' shirt, written in binary. I like the binary, not the message. It occurred to me today that you never see Greek or Latin Scholars wearing shits with 'You are dumb' in Greek or Latin on it. It could be written in 'Ultima', or whatever that script is called, and 99% of the population would be clueless..
Then again, maybe I just couldn't read those Greek and Latin shirts..
people were just getting too damn good with the mercury missiles and gauss cannons. Besides that I went through the whole three games using joystick, but that really doesn't cut it in the end, maybe.
Yeah, that and the mega missles. Some of those weapons were getting way to desctructive. It took out the 'quality' of play that was there.
I picked up a Thrustmaster FCS when the first Descent came out. I used the hat for sliding,s/x for fwd/revers and q/e for rotating.
The hats weren't made for 'high-pressure' - I started going through a joystick a month. I ended grabbing a larger thrustmaster, with better-made hats, and replacing my cheap hat with the better made one. I would have just used the larger stick, but it was too big for my hand:( Well, at least that was the end of the mass-returns:P
Talk about rubbing it in. Not only did they post their discovery, but they made a cartoon about it. That takes some time to make, so they must think they'll be able to use the cartoon again.
Nah, it's just marketing to the non-techies. I worked at a place that 'bought out' another company, and that place became a remote site. They decided they wanted everyone at my shop to switch to Netscape + Sendmail. Now, there were 10 people there, and 150 on this side. That 150 didn't always sit at the same desk. We used Pegasus Mail on Netware. Nothing was desktop centric.
One of the guys came up with about a 15page powerpoint presentation explaining the virtues of Netscape & sendmail. Management loved it.
I responded with a paragraph in an email saying something like: "Sendmail doesn't do anything we need that Mercury doesn't. Plus, Netscape would require us to visit every desktop, everytime someone moved. Pegasus does not. Unfortunately, I don't have the time to make a 'really cool' Powerpoint presentation saying that."
I left 2.5 years ago, and they're still running Pegasus.
It was revolutionary in its ability to combine both single-player and multiplayer gameplay in ways that satisfied many different users;
I don't think I'd agree with that. I worked at Best Buy, and Acer gave the Descent shareware version away with their PC's. It was too hard for most people to play.
Descent may have had better 3-d graphics, but Doom had better textures and better gameplay, especially for single-player...
Well, I think the only 'better' single player gameplay Doom had was only 4 directions of motion. And that was for people who couldn't handle Descent. Doom was Descent for the simple-minded, and uncoordinated.:P
Or they could buy more complicated joysticks/pedals.
and at the time, not everyone had networking or even modems, so good single-player gameplay was critical
heh, every play Doom with a modem? The packets were HUGE, and it sent a LOT of them. The networking was crap. That's why people played it single player. It wasn't usable on Kali or IHHD with a 14.4. So how many people could you actually play multiplayer with? Not many, they had to be local, and they had to be available. Or, you had to invest in faster modems..
IMHO, it was economics and ease of use - not singleplayer gameplay that made Doom more popular.
I think with "reverting back to the old look and feel", the parent poster didn't think of switching off usable features like hiding all those seldomly used items from the start menu until you request to see them all.
I really HATE that option, I remember where stuff is on the screen, if the computer moves it around, it screws me up.
It's great too, when you tell someone to go to 'File - Print' in MSOffice, and they never have used it, so it DOESN'T EXIST. The two little 'nubs' at the bottom of the menu just don't cut it for most people. They don't know what the hell those mean.
Back then we used to multiplay over a null-modem cable. Warcraft 2 and Descent. I liked Descent more, personally. Being able to use the 3D effectively - hiding / flanking / dodging was a most challenging and exciting aspect that most FPS (even today, to be honest) don't offer.
Yep! Descent ROCKED. Dodging 10 homing missles by weaving through a stream of them gave you that feeling of POWER!!
I've yet to play anything that I've had as much fun with, but null modem? Please. You should have been playing with us on the internet. Kali gave you multiplayer IPX, and IHHD (Internet Head to Head Daemon) gave you 'null-modem' play over the internet (but you needed a shell account).
Descent was the first game you could get 4 players in a game on a 28.8 and not have lag - unless there were already bad ping times. The number of packets required for 4 players fit neatly within 28.8 bandwidth.
Ahh those were the days.
>>My brother-in-law was in prison, and it's a >>fucking resort.
>Something tells me that if given the choice to return, he >would not go. Well, duh. But that doesn't mean it's what you see on T.V. either.
> I'm sorry to have to disagree with you, but I have real > doubts that your brother-in-law could get "anything he > wanted, whenever he wanted" in prison. Cocaine? > Civilian clothes? A handgun?
That you ACTUALLY said 'Civillian Clothes' shows me that you have NO IDEA what most of the prison system is like. They don't all wear orange jumpsuits. IIRC, that's only when they've been taken into custody, and are going to see the judge for the first time. Once they're out of Jail (jail is short-term , less than 1 year. Prison is greater than 1 year terms. EVERYONE is in jail, before they're sentenced.), and into the prison, at least minimum and medium, you wear street clothes.. with some restrictions. Though not much.
Yes, it is possible to get a handgun in prison: http://www.policeandsecuritynews.com/janf eb01/surv ivingprisonerduties.htm See the last bullet point. The first ones are about taking criminals into custody. Cocaine? Please. Only a strip/body cavity search of all visitors could keep that out. Guards aren't looking for baggies anyways, they're checking for metal. (I really hated visitations..)
My wife's cousin is a Sheriff. I bet you think that this: http://www.jsonline.com/news/metro/jan03/10 9489.as p doesn't happen regularly also. It's just rare for it to get caught on camera. Most criminals/druggies are happy to not get beat up when they're arrested.
Slashdot Mirror
"Hey Fletch, how are you coming with that article?"
"Well, there were sort of in a gray area"
"How gray?"
"ummm charcoal?"
Apparently? I doubt it. You really think they're coming from the same IP's over and over? If you're getting scanned by the same IP, it's just an infected system with an automated script on it (looking for existing vulns). Half of what you've posted is dynamic.
All you're doing (if you don't go clear your blocks) is slowly blocking the whole of the internet one IP at a time.
A cracker using the same IP? That would be breaking pre-internet Rule #1: Thou Shalt not phreak from thine own phone lines.
Do you have a bomb shelter built yet? It doesn't matter WHERE you live, you could always be in the path of a missle. Are you telling me you spend more time on the 'virtual' possibilites, than on saving the lives of you and your family?
Why? You must have weighed the odds and figured it was unlikely it would happen.
Sounds like my computer security 'thought processes' are the same as your life security :P
True, except here it basically says if you expose samba/CIFS in general, you're fuxored.
"The SMB/CIFS protocol implemented by Samba is vulnerable to many attacks, even without specific security holes. The TCP ports 139 and the new port 445 (used by Win2k and the Samba 3.0 alpha code in particular) should never be exposed to untrusted networks."
So all they've done is release a patch for what can be fixed WITHOUT breaking Windows integration.
EVERYBODY plays the odds:
FIRST: a user has to exploit *A* remote exploit. Which one? Could be anything. Most exploits are either popular services, or shots in the dark. Patch the popular services, and you've defeated 90% of the scans. Remember, there's safety in numbers, and the vast amount of hosts on the internet just makes it less likely you'll even been scanned in the first place - and even less likely that your exploitable remote hole is discovered... (But, yes, definately patch outside services)
SECOND: As a cracker, once you've got that local exploit, what root exploit do you try and take over? Granted, you may have an unlimited amount of time to scour the system for vulnerabilities, but unless that system is actually WORTH something to you, you'll just move onto something easier.
Ease of use, it's the American way. Sure, you may say it's security by obscurity, but deadbolts are EXACTLY the same thing. Any idiot can break down the door or pick the lock.. it's just easier to get into a home with a door that's already open.
You forgot:
6) Kissing Kirsten Dunst again is worth it all!
Who said it needs to be managed? IMHO, the end justifies the means. We want the end result to support HUMANS, not Tigers, not butterflies. If they fit into what the ecology becomes, then dandy.
It's not that I think it's impossible, I just doubt that the first attempt at terraforming would de successful. Using a subset of the possible flora and fauna would help a lot though.
IMHO, "Success" means Humans can live there without oxygen backpacks . Just because we know it WON'T turn out as we predict, doesn't mean that it can't be 'successful'.
That would make sense... except these are the same people who said "Win95 doesn't have DOS". My own PERSONAL experience was having them tell Best Buy sales people when Win95 came out to sell the customer Win95, not matter what they needed. "If they need RAM, sell them Win95. If they need more CPU, sell them Win95." Of course, I was a tech, and MS only talked to the floor people..
No, I wouldn't ask them, they're going to tell you whatever they can get away with that makes them the most money.
Sounds like an experience I had about 10 years ago.. I blew the removable flash bios chip on a motherboard. :( So after calling manufacturers all over the place, I managed to find one that sold the chips in qtys' of one.
"Great!", I thought. "This will be easy."
Two weeks later, and some after some head-scratching, I realized I was the feeling-silly owner of a brand-new, BLANK, flash bios chip.
"it's a cool, easy way to net-enable just about anything."
I'd suggest editing the comment, 'Easy' is relative.
Really? I didn't find that out in any way relating to geekdom.
More like residency.
Now what's the 2nd reason?
You'd be an idiot to not use the round ones.
It became a central point of the network.
Everytime I talk to the guys I left there, they keep saying "And we're almost rid of your OS/2 machine." That's fine, they don't know OS/2, but they fact that it's still there shows how well it's worked.
I like that.
They don't ask that in Wisconsin. Ever read the top of a manhole cover? I lived in IN for a while, and even their manhole covers were made in Neenah, WI.
They're round because if they're round, no matter which way you turn them, they can't fall in the hole.
At least you didn't have to sit at her desk, and type in the rconsole password (created by former admins)
'cunt'
Dammit.. why did I have to get to THAT system when I'm in the hot chick's office?
heh, like when we were all kids, and got our Star Wars stuff together:
"I have Chewbacca!"
"EVERYBODY has Chewbacca"
"Oh, well, I have R5D4!"
"Yeah, I got two of those.. one's pink now. I left it in the sun."
Wouldn't it royally suck if it started with some alien bitching because he can't get High Speed "TimmyNet" Access because the local phonophone company has a monopoly?
In a way, I agree with you. But at the same time, you can't beat sending updates to your webserver from a CRUISE SHIP OFF THE BAHAMAS.
"Monday: Boy it's hot down here. Had to retreat below decks. The chicks are hot in the shade too. Won $200 in the casino. Blew it at the bar on the ladies. Wish you were here! (not :P)"
Today I realized there's nothing comparable to the 'upturned nose' of the average computer geek.
I have a 'You are dumb' shirt, written in binary. I like the binary, not the message. It occurred to me today that you never see Greek or Latin Scholars wearing shits with 'You are dumb' in Greek or Latin on it. It could be written in 'Ultima', or whatever that script is called, and 99% of the population would be clueless..
Then again, maybe I just couldn't read those Greek and Latin shirts..
Yeah, that and the mega missles. Some of those weapons were getting way to desctructive. It took out the 'quality' of play that was there.
I picked up a Thrustmaster FCS when the first Descent came out. I used the hat for sliding,s/x for fwd/revers and q/e for rotating.
The hats weren't made for 'high-pressure' - I started going through a joystick a month. I ended grabbing a larger thrustmaster, with better-made hats, and replacing my cheap hat with the better made one. I would have just used the larger stick, but it was too big for my hand :( Well, at least that was the end of the mass-returns :P
Electrons? I thought 'Triple E Entanglement' was some sort of female mud-wrestling thing..
Nah, it's just marketing to the non-techies. I worked at a place that 'bought out' another company, and that place became a remote site. They decided they wanted everyone at my shop to switch to Netscape + Sendmail. Now, there were 10 people there, and 150 on this side. That 150 didn't always sit at the same desk. We used Pegasus Mail on Netware. Nothing was desktop centric.
One of the guys came up with about a 15page powerpoint presentation explaining the virtues of Netscape & sendmail. Management loved it.
I responded with a paragraph in an email saying something like: "Sendmail doesn't do anything we need that Mercury doesn't. Plus, Netscape would require us to visit every desktop, everytime someone moved. Pegasus does not. Unfortunately, I don't have the time to make a 'really cool' Powerpoint presentation saying that."
I left 2.5 years ago, and they're still running Pegasus.
Come now! You really think those guys were just out to make money when they created Oink!?
Please.
I don't think I'd agree with that. I worked at Best Buy, and Acer gave the Descent shareware version away with their PC's. It was too hard for most people to play.
Descent may have had better 3-d graphics, but Doom had better textures and better gameplay, especially for single-player...
Well, I think the only 'better' single player gameplay Doom had was only 4 directions of motion. And that was for people who couldn't handle Descent. Doom was Descent for the simple-minded, and uncoordinated. :P
Or they could buy more complicated joysticks/pedals.
and at the time, not everyone had networking or even modems, so good single-player gameplay was critical
heh, every play Doom with a modem? The packets were HUGE, and it sent a LOT of them. The networking was crap. That's why people played it single player. It wasn't usable on Kali or IHHD with a 14.4. So how many people could you actually play multiplayer with? Not many, they had to be local, and they had to be available. Or, you had to invest in faster modems..
IMHO, it was economics and ease of use - not singleplayer gameplay that made Doom more popular.
I really HATE that option, I remember where stuff is on the screen, if the computer moves it around, it screws me up.
It's great too, when you tell someone to go to 'File - Print' in MSOffice, and they never have used it, so it DOESN'T EXIST. The two little 'nubs' at the bottom of the menu just don't cut it for most people. They don't know what the hell those mean.
Yep! Descent ROCKED. Dodging 10 homing missles by weaving through a stream of them gave you that feeling of POWER!!
I've yet to play anything that I've had as much fun with, but null modem? Please. You should have been playing with us on the internet. Kali gave you multiplayer IPX, and IHHD (Internet Head to Head Daemon) gave you 'null-modem' play over the internet (but you needed a shell account).
Descent was the first game you could get 4 players in a game on a 28.8 and not have lag - unless there were already bad ping times. The number of packets required for 4 players fit neatly within 28.8 bandwidth. Ahh those were the days.
Havokmon (Kali ID #144)
>>My brother-in-law was in prison, and it's a
f eb01/surv ivingprisonerduties.htm
0 9489.as p
>>fucking resort.
>Something tells me that if given the choice to return, he >would not go.
Well, duh. But that doesn't mean it's what you see on T.V. either.
> I'm sorry to have to disagree with you, but I have real
> doubts that your brother-in-law could get "anything he
> wanted, whenever he wanted" in prison. Cocaine?
> Civilian clothes? A handgun?
That you ACTUALLY said 'Civillian Clothes' shows me that you have NO IDEA what most of the prison system is like. They don't all wear orange jumpsuits. IIRC, that's only when they've been taken into custody, and are going to see the judge for the first time. Once they're out of Jail (jail is short-term , less than 1 year. Prison is greater than 1 year terms. EVERYONE is in jail, before they're sentenced.), and into the prison, at least minimum and medium, you wear street clothes.. with some restrictions. Though not much.
Yes, it is possible to get a handgun in prison:
http://www.policeandsecuritynews.com/jan
See the last bullet point. The first ones are about taking criminals into custody. Cocaine? Please. Only a strip/body cavity search of all visitors could keep that out.
Guards aren't looking for baggies anyways, they're checking for metal. (I really hated visitations..)
My wife's cousin is a Sheriff. I bet you think that this:
http://www.jsonline.com/news/metro/jan03/1
doesn't happen regularly also. It's just rare for it to get caught on camera. Most criminals/druggies are happy to not get beat up when they're arrested.
Sorry to burst your bubble.